During installation, the Mi-Token API Service installer creates a self-signed certificate and associates it to the Mi-Token API service and AD LDS database.
This certificate is used to expose the API Service as a web service over the HTTPS protocol, port 443.
This certificate cannot be changed manually as it is related to the Mi-Token internal database.
Removing it or replacing it will prevent the Mi-Token API Service to start (if stopped) or working correctly.
The certificate has a validity period of 10 years, starting at the installation date. If the certificate expires, you may use the API Service installer in repair mode (when running the installer, it will identify there is a previous installation and enable the repair mode) to have it create a new certificate and associate it to the installation, or you can uninstall and reinstall the component (upon reinstallation, a new certificate will be created).